file-static-server@1.0.2 vulnerabilities

file static server

latest version

1.0.2
first published

7 years ago
latest version published

7 years ago
licenses detected
- ISC
  >=0
View file-static-server package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the file-static-server package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L Directory Traversal Affected versions of file-static-server are vulnerable to Directory Traversal. The function which creates path for file to read does not implement any validation of input data and takes path. As a result, a malicious user could read arbitrary files from the remote server. How to fix Directory Traversal? There is no fix version for `file-static-server`.	*